Starting with the Solaris 2.6 release. the following new features are provided to enhance security.
The Pluggable Authentication Module (PAM) framework.
A noexec_user_stack variable, set in the /etc/system file, which enables you to specify whether stack mappings are executable.
PAM enables you to plug in new authentication technologies without changing the login, ftp, or telnet commands. You can also use PAM to integrate UNIX login with other security mechanisms, such as data encryption standard (DES) or Kerberos. You can also use this framework to plug in mechanisms for account, session, and password management. See Chapter 22, “Using Authentication Services,” ...